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IN THE CLAIMS 

Please amend the claims as provided below. All pending claims have been 
reproduced for the convenience of the Examiner. 

1 . (Previously Presented) A method for granting access to a protected area of a 
storage device from a calling process, comprising the steps of: 

causing a calling process desiring to gain access to the protected area to locate an 
interface that permits access to the protected area; 

causing the calling process to use the interface to create a trusted relationship 
between the calling process and system firmware; 

once the trusted relationship has been established, allowing the calling process to 
retrieve a directory of service areas in the protected area; 

allowing access to one or more service areas in the protected area; 

processing data contained in the one or more service areas; and 

closing the protected area when processing of data in the one or more service 
areas is complete. 

2. (Previously Presented) The method recited in Claim 1 wherein the trusted 
relationship comprises the steps of 

sending a public key to the system firmware; 

modifying the public key using a private key using the system firmware; 

causing the calling process to validate the modified key; 

causing the system firmware to issue a public key to the calling process; 

modifying the public key using the private key using the calling process; 

causing the system firmware to validate the new key; and 

if the key is not validated, denying access to the protected area; and 

if the key is validated, granting access to the protected area. 

3. (Original) The method recited in Claim 1 wherein the step of allowing access 
to the one or more service areas comprises the steps of 

returning a handle from the system firmware to the calling process once the 
system firmware has learned to trust the calling process; 
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modifying the handle using the calHng process; 

returning the modified handle to the system firmware as part of the retrieve 
directory request; and 

allowing the calling process to locate the desired service area using the 
information returned by the retrieve directory request. 

4. (Original) The method recited in Claim 1 wherein the step of allowing access 
to the one or more service areas comprises the steps of: 

returning a handle from the system firmware to the calling process once the 
system firmware has learned to trust the calling process; 
modifying the handle using the calling process; 

returning the modified handle to the system firmware as a part of a retrieve 
directory request; and 

if the open request succeeds, causing the system firmware to move a SETMAX 
boundary to allow access to the requested service area. 

5. (Original) The method recited in Claim 1 wherein the step of allowing access 
to the one or more service areas comprises the steps of: 

returning a handle from the system firmware to the calling process once the 
system firmware has learned to trust the calling process; 
modifying the handle using the calling process; 

returning the modified handle to the system firmware as a part of an open service 
area with a password request; and 

if the open request succeeds, causing the system firmware to move a SETMAX 
boundary to allow access to the requested service area. 

6. (Previously Presented) The method recited in Claim 1 wherein the step of 
closing the protected area comprises the step of 

once the calling process has completed its activities in the protected area, 
returning the SETMAX address to its original boundary using a close command. 
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7. (Previously Presented) A method for granting access to a protected area of a 
storage device from a calling process, comprising the steps of: 

causing a calling process desiring to gain access to the protected area to locate an 
interface that permits access to the protected area; 

causing the calling process to use the interface to create a trusted relation ship 
between the calling process and system firmware; 

once the trusted relationship has been established, allowing access to a one or 
more service areas in the protected area; 

processing data contained in the one or more service areas; and 

closing the protected area when the processing in the one or more service areas is 
complete. 

8. (Previously Presented) The method recited in Claim 7 wherein the trusted 
relationship comprises the steps of: 

sending a public key to the system firmware; 

modifying the public key using a private key using the system firmware; 

causing the calling process to validate the modified key; 

causing the system firmware to issue a public key to the calling process; 

modifying the public key using the private key using the calling process; 

causing the system firmware to validate the new key; and 

if the key is not validated, not granting access to the protected area; and 

if the key is validated, granting access to the protected area. 

9. (Original) The method recited in Claim 7 wherein the step of allowing access 
to the one or more service areas comprises the steps of: 

returning a handle firom the system firmware to the caUing process once the 
system firmware has learned to trust the calling process; 
modifying the handle using the calling process; 

returning the modified handle to the system firmware as a part of the retrieve 
directory request; and 
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allowing the calling process to locate the desired service area using the 
information returned by the retrieve directory request. 

10. (Original) The method recited in Claim 7 wherein the step of allowing access 
to the one or more service areas comprises the steps of: 

returning a handle from the system firmware to the calling process once the 
system firmware has learned to trust the calling process; 
modifying the handle using the calling process; 

returning the modified handle to the system firmware as a part of a retrieve 
directory request; and 

if the open request succeeds, causing the system firmware to move a SETMAX 
boundary to allow access to the requested service area. 

1 1 . (Original) The method recited in Claim 7 wherein the step of allowing access 
to the one or more service areas comprises the steps of: 

returning a handle from the system firmware to the caUing process once the 
system firmware has learned to trust the calling process; 
modifying the handle using the calling process; 

returning the modified handle to the system firmware as a part of an open service 
area with a password request; and 

if the open request succeeds, causing the system firmware to move a SETMAX 
boundary to allow access to the requested service area. 

12. (Previously Presented) The method recited in Claim 7 wherein the step of 
closing the protected area comprises the step of: 

once the calling process has completed its activities in the protected area, 
returning the SETMAX address to its original boundary using a close command. 

13. (Previously Presented) A method for granting access to a protected area of a 
storage device from a calling process, comprising the steps of: 
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causing a calling process desiring to gain access to the protected area to locate an 
interface that permits access to the protected area; 

causing the calling process to use the interface to create a trusted relationship 
between the calling process and system firmware; 

once the trusted relationship has been established, manipulating one or more 
service areas found in the protected area; and 

closing the protected area when the processing in the one or more service areas is 
complete. 

14. (Previously Presented) The method recited in Claim 13 wherein the trusted 
relationship comprises the steps of: 

sending a public key to the system firmware; 

modifying the public key using a private key using the system firmware; 

causing the calling process to validate the modified key; 

causing the system firmware to issue a public key to the calling process; 

modifying the public key using the private key using the calling process; 

causing the system firmware to validate the new key; and 

if the key is not validated, not granting access to the protected area; and 

if the key is validated, granting access to the protected area. 

15. (Original) The method recited in Claim 13 wherein the step of allowing 
access to the one or more service areas comprises the steps of: 

retuming a handle fi"om the system firmware to the calling process once the 
system firmware has learned to trust the calling process; 
modifying the handle using the calling process; 

retuming the modified handle to the system firmware as a part of the retrieve 
directory request; and 

allowing the calling process to locate the desired service area using the 
information returned by the retrieve directory request. 
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16. (Original) The method recited in Claim 13 wherein the step of allowing 
access to the one or more service areas comprises the steps of: 

returning a handle from the system firmware to the calling process once the 
system firmware has learned to trust the calling process; 
modifying the handle using the calHng process; 

returning the modified handle to the system firmware as a part of a retrieve 
directory request; and 

is the open request succeeds, causing the system firmware to move a SETMAX 
boundary to allow access to the request service area. 

1 7. (Original) The method recited in Claim 1 3 wherein the step of allowing 
access to the one or more service areas comprises the steps of: 

retuming a handle from the system firmware to the calling process once the 
system firmware has learned to trust the calling process; 
modifying the handle using the calling process; 

retuming the modified handle to the system firmware as a part of an open service 
area with a password request; and 

if the open request succeeds, causing the system firmware to move a SETMAX 
boundary to allow access to the requested service area. 

1 8. (Previously Presented) The method recited in Claim 13 wherein the step of 
closing the protected area comprises the step of: 

once the calling process has completed its activities in the protected area, 
retuming the SETMAX address to its original boundary using a close command. 
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